Audit Phase: V-DIG (Digital Forensics — Technology Supply Chain & Israeli Sector Relationships)
Audit Date: 2026-05-01
Methodology Note: All findings are drawn exclusively from the research memo below. Claims that could not be verified against primary sources cited in the memo are explicitly flagged. No new research was conducted. No scores, tiers, or BRS values are assigned.
AT&T has entered into a deep commercial and financial relationship with DriveNets, an Israeli software-defined networking company headquartered in Ra’anana, Israel. DriveNets’ “Network Cloud” distributed routing software is deployed within AT&T’s core network infrastructure, making it a critical operational dependency for AT&T’s backbone connectivity.12
In 2023, AT&T executed a secondary share-purchase transaction valued at approximately $650 million, acquiring shares directly from DriveNets’ early investors — including Pitango Venture Capital and Bessemer Venture Partners — as well as from employees.12 This transaction elevates the relationship substantially beyond a standard vendor contract: AT&T is a confirmed strategic equity investor in DriveNets. Trade coverage from 2022–2023 cited AT&T statements indicating DriveNets carries a significant share of AT&T’s core network traffic; this figure should be treated as a point-in-time metric rather than a confirmed ongoing baseline, but it illustrates the operational depth of the dependency.1233
DriveNets was co-founded by Ido Susan (previously founder of Intucell, acquired by Cisco in 2013) and Hillel Kobrinsky. Claims in some reporting that the founders are Unit 8200 alumni are not independently confirmed in available primary sources and are not stated here as fact. An advisory relationship between DriveNets and founders of Team8 (a cyber-foundry associated with Unit 8200 alumni) is referenced in Israeli tech ecosystem reporting33 but is not confirmed by a primary source; this detail is noted as partially verified only.
AT&T maintains a long-standing, multi-decade billing and customer management relationship with Amdocs, an Israeli-founded telecommunications software company (incorporated in Missouri in 1982, with primary R&D and engineering operations in Israel).1024 California Public Utilities Commission regulatory documents from 2004 reference the AT&T–Amdocs billing relationship and contract structures, attesting to the historical depth of the arrangement.24
In 2022, AT&T selected Amdocs’ connectX cloud-native SaaS platform to support new digital brand launches and MVNO operations, deepening an already entrenched relationship.10 Amdocs functions as both a technology vendor and a systems integrator/transformation partner for AT&T’s billing and customer management platforms, embedding it within AT&T’s core operational infrastructure.
The AT&T Foundry innovation centre in Ra’anana, Israel was opened in 2012 in formal partnership with Amdocs, representing an institutionalised co-innovation arrangement between the two companies.1112 Whether the Ra’anana Foundry remains operationally active as of 2024–2026 is not confirmed in available sources; its last confirmed active period is approximately 2012–2015.
AT&T Cybersecurity, rebranded as LevelBlue in 2024, maintains a documented “Strategic Alliance” with Check Point Software Technologies, an Israeli cybersecurity firm founded by Gil Shwed — publicly identified in multiple sources as a Unit 8200 veteran.1529
A September 2024 LevelBlue service guide explicitly documents the “LevelBlue Secure Workforce with Check Point” product, incorporating Check Point’s Secure Web Gateway (SWG) and remote access technologies into AT&T’s managed security service offering.15 A 2018 presentation confirms AT&T Cybersecurity received the designation of Check Point’s “2018 Managed Security Services Partner of the Year,” evidencing a deep commercial relationship extending well over a decade.29 The alliance is confirmed ongoing as of September 2024.15
In 2020, AT&T Cybersecurity launched “AT&T Managed Endpoint Security with SentinelOne,” integrating SentinelOne’s AI-driven endpoint detection and response (EDR) platform into its managed security services portfolio.4 The integration incorporates AT&T’s Alien Labs threat intelligence unit as a data feed into SentinelOne’s platform.4 SentinelOne was co-founded by Tomer Weingarten (Israeli); specific IDF unit affiliation is not confirmed in available primary sources and is not stated here as fact. The company is headquartered in Mountain View, California.
Service continuation is consistent with LevelBlue (AT&T Cybersecurity) portfolio documentation through 2024, though no specific 2023–2024 renewal announcement is independently confirmed.
AT&T maintains an internal enterprise deployment of CyberArk, an Israeli-founded privileged access management (PAM) company (founded by Udi Mokady and Alon Cohen in Israel, 1999). This is evidenced by dedicated job listings for roles including “Sr Specialist Cybersecurity — CyberArk Implementation Engineer” (Hyderabad) and “Principal Cybersecurity CyberArk Architect,” both explicitly recruiting for CyberArk-specialised positions within AT&T’s internal security infrastructure.2627
CyberArk and SentinelOne announced a joint integration partnership in 2022.28 AT&T’s concurrent deployment of both vendors creates an integrated, Israeli-origin identity and endpoint security stack within its enterprise environment. The specific systems covered and scale of the internal CyberArk deployment are not publicly documented beyond what can be inferred from job listings.
AT&T and NICE Ltd. expanded a “Strategic Collaboration” in 2022 to deploy NICE’s Evidencentral digital evidence management platform within 9-1-1 / Public Safety Answering Point (PSAP) environments.534 The Evidencentral platform aggregates 911 audio recordings, radio communications, video, and computer-aided dispatch (CAD) data into unified incident timelines for emergency communications centres.5
NICE Systems (now NICE Ltd.) was founded in Israel in 1986 by IDF veterans and maintains its headquarters in Ra’anana, Israel. The AT&T–NICE relationship is confirmed ongoing as of 2022.534
AT&T Ventures participated in Carbyne’s investment rounds, including confirmed participation around Carbyne’s $100 million Series C raise in 2022.69 Carbyne is an Israeli-founded company providing next-generation 9-1-1 platform technology, enabling PSAP dispatchers to access caller location data and live camera streams for situational awareness in emergency responses.8
The Carbyne–AT&T relationship extends beyond investment: trade reporting from 2022 describes active collaboration in the emergency response technology field, with Carbyne’s platform integrated into first responder communications ecosystems in the United States.8 The exact investment amount contributed by AT&T Ventures specifically to the Series C is not publicly confirmed. Business Wire’s April 2020 announcement of Carbyne board changes also touches on the company’s investor composition at that time.7
No public evidence identified of a third-party systems integrator having specifically mandated Israeli-origin technology within a general AT&T digital transformation programme beyond the documented Amdocs relationship.
The DHS Science & Technology Directorate’s June 2024 “Crowd Analysis Technologies Market Survey Report” lists BriefCam among surveillance and video analytics tools evaluated for public safety applications.18 This is a government evaluation document, not an AT&T procurement record.
Claims that “AT&T Stadium utilised BriefCam technology” during public events have circulated in trade reporting. However, AT&T Stadium (Arlington, Texas) is owned and operated by the Dallas Cowboys organisation under a naming rights agreement with AT&T Inc.; it is not an AT&T Inc. operational facility. Any technology deployment within that venue is a Dallas Cowboys / stadium management procurement, not an AT&T Inc. corporate deployment. This claim misrepresents the nature of the relationship and is excluded from verified findings as an AT&T technology relationship.
No public evidence identified of AT&T Inc. procuring or deploying BriefCam in its own corporate or network operations.
The research memo identifies a personnel biographical link: Brian Krause, appointed Chief Revenue Officer at Aware Inc. (a biometrics firm) in 2022, held prior roles at AnyVision and, before that, at AT&T.17 While this constitutes a notable career path intersecting the Israeli facial recognition sector and AT&T, a former AT&T employee’s subsequent role at AnyVision does not constitute evidence of a technology procurement or contractual relationship between AT&T and AnyVision/Oosto.
No public evidence identified of AT&T Inc. procuring AnyVision or Oosto facial recognition technology.
No direct AT&T–Trigo contract or deployment is documented in available sources. Claims connecting AT&T to Trigo run through inferential chains — a personnel link via a Check Point executive who previously held a role at Trigo, and an unconfirmed AT&T partnership with NoTraffic (a separate Israeli company) — neither of which constitutes primary evidence of an AT&T–Trigo relationship.
No public evidence identified of AT&T deploying Trigo technology.
No public evidence identified of AT&T deploying Israeli-origin predictive policing, sentiment analysis, social media monitoring, or workforce surveillance tools in its own operations.
Check Point and SentinelOne technologies reach AT&T enterprise customers via LevelBlue managed security services, constituting documented indirect deployment of Israeli-origin security technology through a bundled managed service offering.154 This is the primary documented channel through which Israeli-origin surveillance-adjacent technology reaches AT&T’s end-customer environments.
No public evidence identified of Israeli-origin surveillance or biometric technologies reaching AT&T environments via undisclosed third-party platform bundling beyond the above.
No public evidence identified of AT&T operating, leasing, or co-locating data centre infrastructure within Israel for general commercial purposes. AT&T’s documented Israel presence consists exclusively of R&D and engineering offices, not data centre operations.131430
In June 2021, AT&T and Microsoft announced that AT&T would migrate its 5G core mobility network to Microsoft Azure for Operators — a deal reported at approximately $2 billion in value.3 This relationship is confirmed ongoing. AT&T has additionally utilised Google Cloud’s Anthos platform for edge computing within its telecom infrastructure strategy.19
Both Microsoft Azure and Google Cloud are Project Nimbus award holders — the approximately $1.2 billion Israeli government and military cloud contract awarded in 2021.20 AT&T’s cloud expenditure on Azure and Google Cloud contributes revenue to platforms that are contractually obligated to serve Israeli government and military workloads. AT&T itself has no direct role in, and is not a contractor under, Project Nimbus.
The Guardian’s reporting from September and October 2025 concerning the implementation of Project Nimbus and related contractual arrangements focuses on Google and Amazon Web Services, not on AT&T.3132
The broader question of whether AT&T’s hyperscaler spend provides indirect financial support to Project Nimbus infrastructure investment is an inferential framing rather than a documented financial relationship; it is noted here as contextual information only.
No public evidence identified of AT&T directly participating in Project Nimbus or equivalent Israeli government cloud programmes. AT&T is a hyperscaler customer/tenant; it is not a Project Nimbus contractor or sub-contractor.
No public evidence identified of AT&T marketing or contracting data sovereignty, data residency, or infrastructure resilience services specifically to Israeli state institutions or military bodies.
No public evidence identified of AT&T holding direct contracts with the Israeli Ministry of Defence, the Israel Defense Forces (IDF), or Israeli intelligence agencies.
AT&T’s R&D centre, located in Airport City (near Lod / Ben Gurion Airport, described in some sources as Tel Aviv area), is documented in corporate materials as focused on developing products for first responder communications systems and broader telecommunications innovation.131430 The October 2021 NoCamels article describes the centre as developing “advanced products for managing first responder systems worldwide.”13
This characterisation is commercially oriented; no evidence establishes that the centre’s output is contracted to or deployed by Israeli defence or security bodies. The 2021 announcement appears to describe an expansion of AT&T’s Israel presence rather than an entirely new facility, as AT&T’s Israel footprint dates to the 2007 Interwise acquisition and the 2012 Foundry opening.1112
Exact headcount, organisational structure, and the full scope of active programmes at the Israel R&D centre are not publicly documented beyond high-level descriptions in available sources.
The UN Special Rapporteur on Palestinian Territories (Francesca Albanese), in her 2025 report to the Human Rights Council (A/HRC/59/23), addresses the broader technology and commercial ecosystem sustaining Israeli occupation.21 Available documentation of this report does not specifically name AT&T as a subject company, though the report addresses technology sector complicity generally.
The TITIPI “Genocidal Tech” booklet (2024)22 and the table.media/Rosa Luxemburg Stiftung 2025 report on export controls and militarised technology23 address dual-use technology ecosystems broadly. AT&T is not confirmed as a named focal subject of either document; these are included as civil society sector context.
No public evidence identified of AT&T’s technology being specifically documented as deployed for military, intelligence, or law enforcement surveillance within Israel or the occupied Palestinian territories.
No public evidence identified.
No public evidence identified of AT&T providing artificial intelligence, machine learning, computer vision, or autonomous decision-support systems to Israeli state, military, or security bodies.
Carbyne’s platform incorporates AI-assisted situational awareness features enabling 9-1-1 dispatchers to access real-time caller location data and live device camera streams.8 AT&T Ventures’ investment positions AT&T within the ownership and financial ecosystem of this platform.69 Documented deployments of Carbyne technology via AT&T’s FirstNet ecosystem are in United States emergency response contexts. There is no evidence this technology has been provided to Israeli state or military bodies by or through AT&T.
SentinelOne’s EDR platform, integrated into AT&T’s managed security services, employs AI-driven threat detection and behavioural analysis.4 Check Point’s Secure Web Gateway, similarly integrated through LevelBlue, incorporates machine learning for web threat detection.15 Both represent AI-embedded security systems operated by AT&T on behalf of enterprise customers. Neither is documented as deployed in Israeli state or military contexts via AT&T.
No public evidence identified in any of these categories.
AT&T’s Israel technology footprint has evolved across multiple phases:
[pre-2020, historical baseline].The scale of the Israel R&D operation — headcount, budget, and reporting structure — is not publicly documented in detail beyond high-level descriptions.
DriveNets (Ra’anana, Israel — SDN/routing):
AT&T Ventures participated in multiple DriveNets funding rounds. In 2023, AT&T executed a ~$650 million secondary share purchase, acquiring equity from early investors and employees, making AT&T a direct equity holder in a critical Israeli technology vendor embedded in its core network.12
Carbyne (Israeli-founded — emergency communications):
AT&T Ventures participated in Carbyne’s funding, with confirmed involvement around the $100 million Series C (2022).69 The exact AT&T Ventures investment quantum within the Series C is not publicly confirmed. Business Wire reporting from April 2020 documents Carbyne’s corporate governance evolution around the time of AT&T Ventures’ involvement.7 The Jerusalem Post (2022) describes the AT&T–Carbyne collaboration in emergency response technology.8
Historical acquisition — Interwise:
AT&T’s 2007 acquisition of Interwise [pre-2020] was the initial entry point for AT&T’s Israel-based engineering presence and is the structural precursor to the current R&D centre.
No other Israeli-company acquisitions by AT&T are confirmed in available sources within the 2020–2026 window.
No public evidence identified of significant patent portfolios, licensing agreements, or co-development arrangements between AT&T and Israeli research institutions (Technion, Hebrew University, Weizmann Institute).
The 2012 AT&T Foundry Ra’anana, co-established with Amdocs, represents the most institutionalised co-innovation structure between AT&T and an Israeli-origin technology partner.1112 Amdocs’ dual role as both a technology vendor embedded in AT&T’s billing infrastructure and a co-founder of AT&T’s Israel innovation centre reflects the depth of this relationship, which extends beyond a standard commercial procurement relationship into joint strategic product development. 10
The UN Special Rapporteur on Palestinian Territories, Francesca Albanese, published “From economy of occupation to economy of genocide” (A/HRC/59/23) in 2025, addressing the technology and commercial ecosystem sustaining Israeli occupation.21 Available documentation does not specifically name AT&T as a subject company, though the report addresses technology sector complicity in general terms and covers the broader commercial ecosystems within which AT&T’s documented vendors (including Israeli-founded technology firms) operate.
Amdocs attracted significant civil society and law enforcement scrutiny in the 1999–2002 period [pre-2020] when US law enforcement and intelligence agencies raised concerns — reported in a Fox News four-part investigative series (2001, pre-2020) — about potential intelligence access risks related to Amdocs’ handling of US telephone billing records. These concerns were not proven and did not result in publicly documented regulatory action. This is noted as historical context; it is not a current active campaign specifically targeting the AT&T–Amdocs relationship.
No public evidence identified of a specific organised BDS campaign targeting AT&T specifically for its technology relationships with the Israeli state or Israeli technology sector, as distinct from general BDS campaigning.
No public evidence identified of regulatory inquiries, export control actions, or sanctions-related investigations involving AT&T’s technology relationships with Israeli state entities.
The AT&T Snowflake data breach (July 2024)35 — in which metadata covering nearly all AT&T customers’ calls and SMS records was stolen — is a separate regulatory and legal matter (involving FCC investigation and class action litigation) unrelated to the scope of this audit. It is noted only to distinguish it as outside the audit’s evidentiary perimeter.
The following gaps in the public record are noted for completeness:
https://www.calcalistech.com/ctechnews/article/gg7x4za3q ↩↩↩↩↩
https://www.techinasia.com/news/att-buys-650m-shares-israeli-software-firm-drivenets ↩↩↩↩↩
https://news.microsoft.com/source/2021/06/30/att-to-run-its-mobility-network-on-microsofts-azure-for-operators-cloud-delivering-cost-efficient-5g-services-at-scale/ ↩
https://www.sentinelone.com/press/att-cybersecurity-launches-new-managed-endpoint-security-solution-with-sentinelone/ ↩↩↩↩↩
https://www.nice.com/press-releases/nice-and-att-expand-strategic-collaboration-to-provide-integrated-solutions ↩↩↩↩
https://israeldesks.com/att-ventures-has-invested-in-israeli-founded-carbyne/ ↩↩↩↩
https://www.businesswire.com/news/home/20200430005516/en/Carbyne-Announces-Board-Changes ↩↩
https://www.jpost.com/business-and-innovation/article-746418 ↩↩↩↩↩
https://www.techinasia.com/news/israeli-emergency-tech-platform-carbyne-raises-100m ↩↩↩↩
https://www.amdocs.com/news-press/att-selects-amdocs-enable-disruptive-digital-brands ↩↩↩↩
https://www.lightreading.com/business-management/at-t-opens-foundry-in-israel ↩↩↩↩
https://www.prnewswire.com/news-releases/att-opens-international-innovation-center-in-israel-123909879.html ↩↩↩↩
https://nocamels.com/2021/10/telecommunications-att-rd-center-tel-aviv/ ↩↩↩↩
https://cyber.levelblue.com/m/34e55af9f39bf931/original/SVG-Secure-Workforce-Check-Point-Service-Guide-Sept-2024.pdf ↩↩↩↩↩↩
https://www.checkpoint.com/technology-partners/ ↩
https://www.aware.com/press-release/brian-krause-chief-revenue-officer/ ↩
https://www.dhs.gov/sites/default/files/2024-06/24_0624_st_crowdcountsmsr.pdf ↩
https://cloud.google.com/blog/topics/anthos/anthos-for-telecom-puts-google-cloud-partners-apps-at-the-edge ↩
https://www.972mag.com/project-nimbus-contract-google-amazon-israel/ ↩
https://www.un.org/unispal/document/a-hrc-59-23-from-economy-of-occupation-to-economy-of-genocide-report-special-rapporteur-francesca-albanese-palestine-2025/ ↩↩
https://table.media/assets/uploads/rpp_2025_11_miltech.pdf ↩↩
https://cticorp.com/wbcasestudy/ ↩
https://talent500.com/jobs/att/sr-specialist-cybersecurity-cyberark-implementation-engineer-hyderabad-T500_ATT_R_93901/ ↩↩
https://careers.techtitans.org/companies/at-t-2-91e8eb1f-f53b-4ef1-9ab3-ee91278661cb/jobs/38630018-principal-cybersecurity-cyberark-architect ↩↩
https://www.cyberark.com/press/cyberark-and-sentinelone-team-up-to-enable-step-change-in-endpoint-and-identity-security/ ↩
https://community.checkpoint.com/fyrhh23835/attachments/fyrhh23835/general-topics/15136/8/ATT%20Cybersecurity%20CPX%20-%20Terry%20Hect%20-%20v4.pdf ↩↩
https://www.theguardian.com/world/2025/sep/25/microsoft-blocks-israels-use-of-its-technology-in-mass-surveillance-of-palestinians ↩↩
https://www.theguardian.com/us-news/2025/oct/29/google-amazon-israel-contract-secret-code ↩↩
https://www.cio.com/article/201498/hot-israeli-5g-startups-to-watch.html ↩↩
https://www.telecomtv.com/content/security/nice-and-at-t-expand-strategic-collaboration-50991/ ↩↩↩
https://www.reddit.com/r/technology/comments/1e3nz5p/nearly_all_att_customers_sms_and_call_records/ ↩
